Despite this, Olga Karpova, head of the information security departmentC

[tanjimajuha20]

Statistics for Russia, as noted by the Qrator Labs press service for ComNews, show a slight decrease, the flip side of which is the increasing complexity of attacks: "If last year was unprecedented in terms of the number of mass attacks, now this trend has begun to decline, giving way to targeted attacks. The "competition of armor and projectile" continues - the struggle of protective measures and attack methods. Now, instead of mass scale, attackers are faced with the task of ensuring effectiveness. The number of attacks is falling, and their complexity and sophistication are growing."

at RooX, believes that targeted nepal whatsapp number database attacks on Russian infrastructure have not disappeared: “A recent example is the attack on the Mir payment system.”

Alexey Pashkov, Head of WAF and Anti-DDoS at Solar Group, also sees a trend towards a decrease in the average power and average duration of DDoS attacks, but the scope of attacks is increasing: "We are seeing a significant increase in the number of DDoS attacks - their number in Q3 2023 almost doubled. This means that attackers began to pay less attention and time to attacks on specific organizations - today they are pursuing the goal of attacking as many companies as possible. According to our data, in Q3 attackers more often attacked the telecom, public sector and IT industries: on average, in these industries, the number of DDoS attacks per organization per month since the beginning of the quarter has increased by about three times. In Q3, the number of attacks on organizations working in the construction sector also increased."

Dmitry Nikonov believes that in the third quarter there was an increase in the number of DDoS attacks in Russia: "In 2023, the DDoS-Guard protection system has already repelled more than 1.4 million attacks, breaking the internal anti-record of last year. In the third quarter of 2023, the number of attacks increased by 15% compared to the second quarter and by 30.5% compared to the first quarter."

"The main specificity of attacks on Russian organizations is that most attackers are not interested in financial gain from attacks - they attack solely because of their civic position and are so-called hacktivists. However, professional hackers are also present among the attackers, they are divided into those who want to create a news hook, and those who are really focused on making systems unavailable," this is how Alexander Chernyakov, head of the Innostage web analytics team, sees the Russian specificity. The number of attacks on Russian organizations, according to his assessment, has decreased somewhat, but it still remains many times higher compared to 2021.

According to Alexey Semenychev, Head of Expertise and Analytics at Garda Technologies, the telecom industry is the most actively attacked, followed closely by "transport and shipping" and the public sector, and the fuel and energy complex and industry round out the top five. According to him, the Russian specificity is the weak activity of attackers against IT companies: "There may be various reasons for this: on the one hand, domestic IT giants are no longer considered competitors to Western ones and, from a business point of view, there is no need to fight them with such methods. On the other hand, domestic IT corporations are not decisive in terms of the country's budget, which means that attacks on them are a matter of prestige, but nothing more."

Alexey Semenychev believes that the main motivation of the attackers is politics, and not manifestations of competitive struggle, as is the case abroad.

Irina Zinovkina, head of the research group at Positive Technologies, also notes that politically motivated DDOS attacks remain a pressing issue for Russian organizations - such incidents are characterized by a more destructive impact on the victim's infrastructure. At the same time, in her opinion, in addition to classic DDOS attacks, hackers use mixed (when several types of malware are used at once) and multi-vector (when not one resource is attacked, but several parts of the infrastructure - for example, a company's network and website at the same time) DDOS attacks, which is becoming a serious problem for organizations not only in Russia, but also around the world.

"Politically motivated hacktivists are still in business and have changed their tactics: in addition to DDoS attacks, they have also added exploitation of vulnerabilities to hack web resources," this is the trend that Dmitry Nikonov sees.